Dev0ops hints

osku · June 12, 2018, 11:41am

thanks @lokori this is a great box! Love the privesc

vrvik · June 12, 2018, 12:12pm

ive learnt a lot from this box via privsec thanks a lot for this box @lokori
any doubts feel free to pm me or hit me up on discord [ Ruthvik#7626 ]

trodix · June 12, 2018, 12:40pm

Do privesc is a “printer” thing on this box?

Dltd · June 12, 2018, 2:43pm

I enjoyed getting this one done. Frustrating to not have the initial entry as easy as I thought but a sanity check by @Frey of my idea’s pointed out my mistake. Keeping it simple was the way. Root was relatively easy if you look at the right stuff, which in a way is hinted at on the box itself as well. Thanks @lokori

trodix · June 12, 2018, 3:01pm

I finaly got root ! I was to the right way but I don’t handerstand why the “present” is wrong but the “past” is right. Anyway, it was a good box and I learned a lot. Thank’s @lokori

johnny87 · June 12, 2018, 3:07pm

Any hint or direction to get user shell? Is it related to feed?

J3rryBl4nks · June 12, 2018, 3:50pm

I have some questions about general ssh key formatting, can someone PM me?

bynx · June 12, 2018, 4:11pm

@J3rryBl4nks said:
I have some questions about general ssh key formatting, can someone PM me?

PM’d

trodix · June 12, 2018, 5:00pm

@johnny87 said:
Any hint or direction to get user shell? Is it related to feed?

About some formatting data

h3kd3w · June 12, 2018, 5:15pm

I have run DirBuster with directory-list-2.3-small.txt , but is a looong way…what about extension? How to define if php is right extension option?

J3rryBl4nks · June 12, 2018, 6:02pm

gobuster -u “MACHINEURL” -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt

That’s the syntax I usually use for HTB machines.

n1b1ru · June 12, 2018, 9:26pm

@drtychai said:

@n1b1ru said:

@Snoe said:

@Didakt said:
Rooted !
Very cool box, thanks to the creator

And the first hint some one gave for priv esc was just perfect :

“Far far ago, there was a man that could view back into the past, and see alternated versions of realities , how did he do that mate?”

Think about it !

Thanks for the box

Same. That guy really showed me the way to privesc.

I really read the past and I didn’t find anything relevant. Stucked in priv

Go farther back

Buuffff farther from history ? Anyway I was thinking in taking a Delorean. LOL !!!

h3kd3w · June 13, 2018, 7:09am

@J3rryBl4nks said:
gobuster -u “MACHINEURL” -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt

That’s the syntax I usually use for HTB machines.

Thanks a lot mate!

Seraf · June 13, 2018, 5:35pm

Anyone to PM?

direct2600 · June 13, 2018, 7:43pm

@Seraf said:
Anyone to PM?

sure hmu

Vex20k · June 13, 2018, 7:59pm

I got the user, working on root. I got something related to a protocol but I can’t figure out whats missing. Could someone shoot me a PM?

imaginarybit · June 14, 2018, 7:43am

I can read the file and get user flag. But I can not form a shell. Could someone shoot me a PM?

trodix · June 14, 2018, 8:16am

@Vex20k said:
I got the user, working on root. I got something related to a protocol but I can’t figure out whats missing. Could someone shoot me a PM?

back to the past Marty !

Seraf · June 14, 2018, 8:50am

Got user!!! Time to root!!

pkneca · June 14, 2018, 12:04pm

Hi,

I found were my uploads are stored, i can read them. I tried uploading php reverse shell as xml, get some error, cant execute, but still can read it with curl.

I need a hint